Specifications

ManualsBrandsCisco ManualsDocking StationAccess Registrar 3.5

501

502

503

504

505

506

507

508

509

510

2-452

Catalyst 4500 Series Switch Cisco IOS Command Reference—Release IOS XE 3.3.0XO(15.1(1)XO)

OL_28738 -01

Chapter 2 Cisco IOS Commands for the Catalyst 4500 Series Switches

private-vlan

An isolated VLAN is a VLAN that is used by the isolated ports to communicate with the promiscuous

ports. The isolated VLAN traf fic is blocked on all other private por ts in the same VLAN and can be

received only by the standard trunki ng ports and the promisc uous ports that are assi gned to the

corresponding primary VLA N.

A community VLAN is the VLAN that carries the traffic among the community ports and from the

community ports to the promiscuous ports on the corresponding primary VLAN. A community VLAN

is not allowed on a private VLAN trunk.

A promiscuous port is a private port that is assigned to a primary VLAN.

A primary VLAN is a VLAN that is used to convey the traffic from the switches to the customer end

stations on the private ports.

You can specify only one isolated vlan-i d value, while multiple community VLANs are allowed. You

can only associate isolated and community VLANs to one VLAN. The associated VLAN list may not

contain primary VLANs. Similarly, a VLAN that is already associated to a primary VLAN cannot be

configured as a primary VLAN.

The private-vlan commands do not take effect until you exit the config-VLAN submode.

If you delete either the primary or secondary VLAN, the ports that are associated with the VLAN become

inactive.

Refer to the Catalyst 45 00 Series Switch Cisco IOS Software Configuration Guide fo r additional

configuration gui delines.

Examples This exampl e shows how to configure VLAN 202 a s a primary VLAN and verify the co nfiguration:

Switch# configure terminal

Switch(config)# vlan 202

Switch(config-vlan)# private-vlan primary

Switch(config-vlan)# end

Switch# show vlan private-vlan

Primary Secondary Type Interfaces

------- --------- ----------------- ------------------------------------------

202 primary

This example shows how to configure VLA N 303 as a community VLAN and ve rify the configuration:

Switch# configure terminal

Switch(config)# vlan 303

Switch(config-vlan)# private-vlan community

Switch(config-vlan)# end

Switch# show vlan private-vlan

Primary Secondary Type Interfaces

------- --------- ----------------- ------------------------------------------

202 primary

303 community

This example shows how to configure VLA N 440 as an isolated VLAN and ver ify the configuratio n:

Switch# configure terminal

Switch(config)# vlan 440

Switch(config-vlan)# private-vlan isolated

Switch(config-vlan)# end

Switch# show vlan private-vlan

Primary Secondary Type Interfaces

------- --------- ----------------- ------------------------------------------

202 primary